Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
Morning Overview on MSN
The TanStack supply chain attack poisoned 160 npm and PyPI packages — reaching OpenAI, Mistral AI, and UiPath through compromised build pipelines
On May 11, 2026, a self-replicating worm called Mini Shai-Hulud quietly slipped into 42 widely used TanStack open-source packages, corrupting 84 npm artifacts before anyone noticed. Within hours, the ...
TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
Mini Shai-Hulud worm compromises 169 npm packages including TanStack Mistral AI; TeamPCP uses stolen OIDC tokens.
OpenAI has said it found no evidence that user data was accessed following a security issue linked to a supply-chain attack involving the open-source TanStack npm library. The company said in a ...
A poisoned open-source dependency let attackers breach two OpenAI employee devices and steal credentials from a limited set of its internal source code repositories, OpenAI confirmed in a May 14, 2026 ...
OpenAI has confirmed the security breach. According to the company, two employee devices were compromised during a large-scale software supply chain attack connected to the TanStack npm ecosystem.
The Korea rollout gives UiPath local cloud infrastructure for enterprises with data-residency needs, making customer adoption ...
Coding agent news has become its own genre. Refreshingly, UiPath has decided not to build one. Claude Code and OpenAI Codex ...
Late last year, software automation firm UiPath, Inc. (PATH) traded as close as around $20. In January, sellers emerged, continuing to dump the stock in February. In March, when the company posted ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results